CVE-2022-2928
isc-dhcp - security update
6.5
MEDIUM
CVSS 3.1
EPSS 0.07%
Description
In ISC DHCP 4.4.0 -> 4.4.3, ISC DHCP 4.1-ESV-R1 -> 4.1-ESV-R16-P1, when the function option_code_hash_lookup() is called from add_option(), it increases the option's refcount field. However, there is not a corresponding call to option_dereference() to decrement the refcount field. The function add_option() is only used in server responses to lease query packets. Each lease query response calls this function for several options, so eventually, the reference counters could overflow and cause the server to abort.
How to fix CVE-2022-2928
To remediate CVE-2022-2928, upgrade the affected package to a fixed version below.
- —upgrade to 4.4.3_p1-r0 or later
- —upgrade to 4.4.1-2.3+deb11u1 or later
- —upgrade to 4.4.1-2+deb10u2 or later
- —upgrade to 4.4.1-2.3+deb11u1 or later
Is CVE-2022-2928 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (4)
- from 0, < 4.4.3_p1-r0
- from 0, < 4.4.1-2.3+deb11u1
- from 0, < 4.4.1-2+deb10u2
- from 0, < 4.4.1-2.3+deb11u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |